15 December 2021
December 9, 2021, the Apache Software Foundation released Log4j 2.15.0 to resolve a critical remote code execution vulnerability (CVE-2021-44228) affecting versions 2.0-beta9 through 2.14.1. Apache Log4j is commonly used Java logging library with Apache Tomcat web applications.  
Vulnerability details can be found from:  <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228" target="_blank">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228</a>&nbsp;
<h3>Naviate Security Advisory </h3>
<ul>
<li>Naviate for Revit</li>
<li>Naviate for Civil 3D</li>
<li>Naviate Nexus</li>
<li>Naviate Plant3D</li>
<li>XL Products</li>
</ul>
We have not identified any components in the above product families that is affected by Log4j vulnerability.
We are not installing or using anything related to The Log4j library.
<h3>Symetri recommendation  </h3>
Even though current versions of Naviate products are not affected by this vulnerability, Symetri always recommends its customers to keep their software up to date.  
The latest release are available on <a href="http://www.naviate.com/downloads" target="_blank">www.naviate.com/downloads</a>.
If you have any questions or concerns, please contact your local account manager or the Naviate team <a href="mailto:info@naviate.com." target="_blank">info@naviate.com.</a>
&nbsp;

15 December 2021
December 9, 2021, the Apache Software Foundation released Log4j 2.15.0 to resolve a critical remote code execution vulnerability (CVE-2021-44228) affecting versions 2.0-beta9 through 2.14.1. Apache Log4j is commonly used Java logging library with Apache Tomcat web applications.  
Vulnerability details can be found from:  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228 
Naviate Security Advisory 
Naviate for Revit
Naviate for Civil 3D
Naviate Nexus
Naviate Plant3D
XL Products
We have not identified any components in the above product families that is affected by Log4j vulnerability.
We are not installing or using anything related to The Log4j library.
Symetri recommendation  
Even though current versions of Naviate products are not affected by this vulnerability, Symetri always recommends its customers to keep their software up to date.  
The latest release are available on www.naviate.com/downloads.
If you have any questions or concerns, please contact your local account manager or the Naviate team info@naviate.com.
 

Apache Log4j Critical Vulnerability (CVE-2021-44228) in the context of Symetri Naviate applications

Naviate 2022.1.8 release and how to update!

Naviate Core has moved to Accelerate !

Schema Conflicts in Revit 2024

How to update to Naviate 2022.1.7?

Revit Cloud Worksharing not working  2023

Naviate for Revit 2023 - Prerequisites

Naviate for Revit 2024 - Prerequisites

Does Naviate take a license on startup ?

Previous versions of Naviate

Naviate Rebar Extension to be replaced by Naviate Rebar

Favorite feature in Naviate 2022 - where is it?

Content location Naviate for Revit 2021 and older

Manual installation Naviate for Revit

Naviate for Revit 2021 - Prerequisites

Naviate for Revit 2022 - Prerequisites

Naviate REX cuts off my beam-reinforcement

Naviate Structure 2022 – Rebar Numbering issues in workshared projects

How to update Naviate 2022.1.5 to 2022.1.6?

Not able to update Naviate S 2022 to 2022.1.2?

Not receiving Naviate trial email?

Scripted installation Naviate for Revit

Where is Fire & Acoustic in Naviate 2022 ?

Where is Steel Detailing in 2022 ?

3. FAQ Naviate for Revit